-
Notifications
You must be signed in to change notification settings - Fork 5
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
fix: booking security 설정 core로 이동 #165
Changes from 3 commits
a19b64f
ff4297d
9ab6f08
f9ca9bf
ca9ce83
File filter
Filter by extension
Conversations
Jump to
Diff view
Diff view
There are no files selected for viewing
This file was deleted.
This file was deleted.
Original file line number | Diff line number | Diff line change |
---|---|---|
@@ -1,13 +1,14 @@ | ||
package com.pgms.coresecurity.security.jwt; | ||
|
||
import java.security.Key; | ||
import java.time.Instant; | ||
import java.util.Arrays; | ||
import java.util.Collection; | ||
import java.util.Date; | ||
import java.util.UUID; | ||
import java.util.stream.Collectors; | ||
|
||
import javax.crypto.SecretKey; | ||
|
||
import org.slf4j.Logger; | ||
import org.slf4j.LoggerFactory; | ||
import org.springframework.beans.factory.annotation.Value; | ||
|
@@ -23,7 +24,6 @@ | |
import io.jsonwebtoken.Claims; | ||
import io.jsonwebtoken.Jwts; | ||
import io.jsonwebtoken.MalformedJwtException; | ||
import io.jsonwebtoken.SignatureAlgorithm; | ||
import io.jsonwebtoken.UnsupportedJwtException; | ||
import io.jsonwebtoken.io.Decoders; | ||
import io.jsonwebtoken.security.Keys; | ||
|
@@ -48,24 +48,24 @@ public String generateAccessToken(UserDetailsImpl userDetails) { | |
|
||
return Jwts.builder() | ||
.claim("id", userDetails.getId()) | ||
.setSubject((userDetails.getUsername())) | ||
.setIssuedAt(Date.from(now)) | ||
.setExpiration(Date.from(expirationTime)) | ||
.subject((userDetails.getUsername())) | ||
.issuedAt(Date.from(now)) | ||
.expiration(Date.from(expirationTime)) | ||
.claim("authority", authorities) | ||
.signWith(key(), SignatureAlgorithm.HS256) | ||
.signWith(key()) | ||
.compact(); | ||
} | ||
|
||
private Key key() { | ||
private SecretKey key() { | ||
return Keys.hmacShaKeyFor(Decoders.BASE64.decode(secretKey)); | ||
} | ||
|
||
public Authentication getAuthentication(String accessToken) { | ||
Claims claims = Jwts.parserBuilder() | ||
.setSigningKey(key()) | ||
Claims claims = Jwts.parser() | ||
There was a problem hiding this comment. Choose a reason for hiding this commentThe reason will be displayed to describe this comment to others. Learn more. 미뤄두고 있었는데 감사합니다 |
||
.verifyWith(key()) | ||
.build() | ||
.parseClaimsJws(accessToken) | ||
.getBody(); | ||
.parseSignedClaims(accessToken) | ||
.getPayload(); | ||
|
||
Collection<? extends GrantedAuthority> authorities = | ||
Arrays.stream(claims.get("authority").toString().split(",")) | ||
|
@@ -79,7 +79,7 @@ public Authentication getAuthentication(String accessToken) { | |
|
||
public boolean validateAccessToken(String authToken) { | ||
try { | ||
Jwts.parserBuilder().setSigningKey(key()).build().parse(authToken); | ||
Jwts.parser().verifyWith(key()).build().parse(authToken); | ||
return true; | ||
} catch (MalformedJwtException e) { | ||
logger.error("Invalid JWT token: {}", e.getMessage()); | ||
|
Original file line number | Diff line number | Diff line change | ||||||||||||||||||||||||||||||||
---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|
@@ -1,4 +1,4 @@ | ||||||||||||||||||||||||||||||||||
package com.pgms.apibooking.common.exception; | ||||||||||||||||||||||||||||||||||
package com.pgms.coresecurity.security.jwt.booking; | ||||||||||||||||||||||||||||||||||
|
||||||||||||||||||||||||||||||||||
import java.io.IOException; | ||||||||||||||||||||||||||||||||||
|
||||||||||||||||||||||||||||||||||
|
@@ -8,6 +8,8 @@ | |||||||||||||||||||||||||||||||||
import org.springframework.stereotype.Component; | ||||||||||||||||||||||||||||||||||
|
||||||||||||||||||||||||||||||||||
import com.fasterxml.jackson.databind.ObjectMapper; | ||||||||||||||||||||||||||||||||||
import com.pgms.coredomain.domain.common.BaseErrorCode; | ||||||||||||||||||||||||||||||||||
import com.pgms.coredomain.domain.common.BookingErrorCode; | ||||||||||||||||||||||||||||||||||
import com.pgms.coredomain.response.ErrorResponse; | ||||||||||||||||||||||||||||||||||
|
||||||||||||||||||||||||||||||||||
import jakarta.servlet.ServletException; | ||||||||||||||||||||||||||||||||||
|
@@ -28,11 +30,11 @@ public BookingAuthEntryPoint() { | |||||||||||||||||||||||||||||||||
@Override | ||||||||||||||||||||||||||||||||||
public void commence(HttpServletRequest request, HttpServletResponse response, | ||||||||||||||||||||||||||||||||||
AuthenticationException authException) throws IOException, ServletException { | ||||||||||||||||||||||||||||||||||
There was a problem hiding this comment. Choose a reason for hiding this commentThe reason will be displayed to describe this comment to others. Learn more. HttpResponseUtil 을 만들어 놓은게 있어서 이걸 적용하면 될 거 같아요~!
Suggested change
There was a problem hiding this comment. Choose a reason for hiding this commentThe reason will be displayed to describe this comment to others. Learn more. 제거했습니다! |
||||||||||||||||||||||||||||||||||
BookingErrorCode errorCode = BookingErrorCode.BOOKING_TOKEN_NOT_EXIST; | ||||||||||||||||||||||||||||||||||
BaseErrorCode errorCode = BookingErrorCode.BOOKING_TOKEN_NOT_EXIST; | ||||||||||||||||||||||||||||||||||
response.setStatus(errorCode.getStatus().value()); | ||||||||||||||||||||||||||||||||||
response.setContentType(MediaType.APPLICATION_JSON_VALUE); | ||||||||||||||||||||||||||||||||||
|
||||||||||||||||||||||||||||||||||
ErrorResponse errorResponse = new ErrorResponse(errorCode.getCode(), errorCode.getMessage()); | ||||||||||||||||||||||||||||||||||
ErrorResponse errorResponse = errorCode.getErrorResponse(); | ||||||||||||||||||||||||||||||||||
response.getWriter().write(objectMapper.writeValueAsString(errorResponse)); | ||||||||||||||||||||||||||||||||||
} | ||||||||||||||||||||||||||||||||||
} |
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
업데이트 해주셔서 감사합니다 🙇♀️